[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Java crypto Cipher-Block-Chaining isn't chaining

To: RL@incaa.nl, ipsec@lists.tislabs.com
Subject: Re: Java crypto Cipher-Block-Chaining isn't chaining
From: Alex Alten <Alten@home.com>
Date: Thu, 29 Apr 1999 22:28:40 -0700
In-Reply-To: <37275ab5.uincaa@incaa.nl>
Sender: owner-ipsec@lists.tislabs.com

At 06:45 PM 4/28/99 +0200, Robert Luursema wrote:
>Here a question for a cryptography specialist.
>
>I just found out that the Java JCE (java Cryto Extension API) as it is
>designed by Sun and implemented by many others, that its
>Cipher-Block-Chaining code (for DES, DESede, idea, etc.) is not doing
>any chaining between blocks of data. That is, the IV that carries the
>cipher end state of previous encrypted block of data to the next one,
>stays the same from block to block. It is only randomly determined
>upon cipher initialization, and there is a way to set and to get it.
>The IV is however not changed when encrypting data.
>
>To me this defeats the purpose of Cipher-Block-Chaining, which 
>guarantees that each block (exchange) of encrypted data depends on the
>previous one.
>
>But what do you crypto specialists think about this?

Interesting. Looks like the JCE needs to be fixed.  Also I wonder why
Sun's version doesn't support RSA signing/verification?

- Alex
--

Alex Alten

Alten@Home.Com
Alten@TriStrata.Com

P.O. Box 11406
Pleasanton, CA  94588  USA
(925) 417-0159

References:

Java crypto Cipher-Block-Chaining isn't chaining

From: RL@incaa.nl (Robert Luursema)

Prev by Date: How is CONNECTED notify authenticated ?
Next by Date: Re: linux-ipsec: Decrypting ID payload in Main Mode w/shared secrets
Prev by thread: Java crypto Cipher-Block-Chaining isn't chaining
Next by thread: 112 bit 3DES
Index(es):
- Main
- Thread